Extended Key Usage (EKU) for Session Initiation Protocol (SIP) X.509 Certificates
RFC 5924

Note: This ballot was opened for revision 08 and is now closed.

(Cullen Jennings) (was Discuss, Yes) Yes

(Jari Arkko) No Objection

(Ron Bonica) (was Discuss, No Record, No Objection) No Objection

(Ross Callon) No Objection

(Ralph Droms) No Objection

(Lisa Dusseault) No Objection

(Adrian Farrel) No Objection

Comment (2009-07-16 for -)
No email
send info
The text says...
   Consider the SIP RFC 3261 [2] trapezoid shown in Figure 1.
...but the figure does not show a trapezoid.
I guess there is an implied dotted line between alice and bob?


No doubt Appendix A needs the BSD license applied.

(Russ Housley) (was Discuss, Yes) No Objection

Comment (2009-07-16)
No email
send info
  The OID needed for the ASN.1 module identifier is:
  id-mod-sip-domain-extns2007  OBJECT IDENTIFIER ::= { id-mod 62 }

  I see no reason to include id-pe and id-aca in the module.

Alexey Melnikov (was Discuss, No Objection) No Objection

Comment (2009-07-16 for -)
No email
send info
Bernard Aboba <Bernard_Aboba@hotmail.com> done an O&M Area review of the document which said:

Previous EKU extensions (such as [RFC 4334]) have not been widely
deployed, due to the additional operational complexity they would
have introduced, and the limited benefits.

Given this, and the potential interoperability impact of this document,
the Experimental classification would probably be more appropriate.

(Tim Polk) (was No Record, Discuss) No Objection

(Dan Romascanu) (was Discuss) No Objection

(Robert Sparks) No Objection

Magnus Westerlund No Objection